[VLAN] Re: filtering BPDU(STP) from bridged vlans
Stephen Hemminger
shemminger at linux-foundation.org
Fri Jul 6 15:56:03 PDT 2007
On Fri, 6 Jul 2007 11:52:59 -0400 (EDT)
Krzysztof Adamski <k at adamski.org> wrote:
> Hi All,
>
> What is the correct way of filtering STP (BPDU) packets from a single
> bridge that contains vlans, equivalent to cisco's:
> spanning-tree rootguard
> spanning-tree bpdufilter enable
>
>
> I have many bridge interfaces, each with two vlans, for example
>
> eth0.400 and eth1.500 are part of br600, and I want to prevent all STP
> packets that arrive on eth1.500 from being passed to eth0.400.
>
> I have other br interfaces that I don't want to be affected.
>
There is an ebtables module to filter out STP.
Note: the bridge code does not pass STP, it uses it.
--
Stephen Hemminger <shemminger at linux-foundation.org>
More information about the Vlan
mailing list